Since you specifically mention Burp and portswigger, I think that I would go with Web Application Hackers Handbook. Dafydd Stuttard (a.k.a. portswigger) is one of the coauthors of the book. Extremely well written.